Protecting our customer’s privacy and personal data is of great importance to ALPS Biketours GmbH. The processing of your personal data will strictly comply with data protection regulations.
In order to protect your data against accidental or intentional manipulation, loss, destruction or access by unauthorized third parties, we have put in place technical and organizational security measures which are continuously optimized according to the technical and legal development.
The party responsible for this website is:ALPS Biketours GmbH
Fraunhoferstr. 11 a
80469 Munich, Germany
If you have any questions about data protection or if you wish to exercise your rights, you can contact our data protection contact by post or at the following email address: firstname.lastname@example.org
1. Collection and use of personal data
We collect personal data in order to process the offers and services you have chosen. This is done when booking one of our trips, filling out a form, subscribing to a newsletter, participating in a customer survey, evaluating travel services, sending e-mails or when using online services.
Please note that especially when booking tourism services personal data from fellow travellers can also be collected. Please make sure that any details relating to thirds parties are provided with their approval.
Our corporate purpose is the organization and realization of tourism services and the associated services and accounting. Data will be collected, processed and used for this purpose only.
In order to fulfil and process your travel arrangements we require following data:
- title (all travellers)
- first name, last name (all travellers)
- address (for sending the invoice and travel documents)
- date of birth / age (all travellers)
- telephone number of main traveller / contact person (for contacting on short notice in case of any changes)
- email address (for sending booking details)
Further personal data can be transmitted voluntarily:
- Information on food intolerances / allergies
- Clothing size
- Information about the bicycle (e.g. type, model, year of manufacture)
On our website you also have the opportunity to get in touch with us on most different topics. Depending on the background of the contact various data are requested in the contact form. Personal details such as title, first name, last name and email address are usually required to be able to contact and personally address you. Should you use a contact form to request a callback or an appointment, additional data such as your telephone number may be required. With any request or question on existing bookings you can also provide your booking or customer number.
We use Sendinblue (Sendinblue GmbH, Köpenicker Str. 126, 10179 Berlin) to send our newsletter. For this purpose, we provide the following personal data to Sendinblue: email address, the name or pseudonym you provide. The legal basis for the processing is your consent in accordance with Art. 6 (1) (a) GDPR. To protect against misuse, we use the double opt-in procedure to complete the registration. You can revoke your consent to the processing of your personal data at any time. There is a link in each newsletter to unsubscribe from it. In addition, the revocation can be made via the specified contact options. The declaration of revocation does not affect the lawfulness of the processing that has taken place to date. Upon revocation of consent, your data will be deleted.
Sendinblue is the recipient of your personal data and acts as a data processor for us. We have concluded a data processing agreement (DPA) with Sendinblue.
1.2 Customer - Login
As a customer of our travel services, you have the opportunity to log in to our customer login area. The customer login area offers the possibility to download further general travel information or to exchange information with other travel participants in our forum.
You will receive the access data to our customer login area after booking with your travel documents.
The use of the customer forum is anonymous. No personal data is collected in the course of use.
2. Transfer of personal data to third parties
A passing on of personal data to third parties does not take place in principle, in particular the sale of customer information does not belong to our business. A passing on is possible in the following extent.
In order to carry out the services we offer, your personal data will be passed on in whole or in part to contractual partners of ALPS Biketours GmbH. This includes in particular hotels, transport companies and the tour guide. Of course, we make every effort to limit this data transfer to the necessary minimum. Our contractual partners are also subject to the relevant statutory data regulations and any processing of personal data is regulated with us in writing by an order processing contract. We will only pass on your personal data to state institutions and authorities within the framework of mandatory legal regulations.
In connection with the subscription of newsletters, we forward personal data to our service provider used for the dispatch.
In connection with the use of our online services, we forward your data to our online system service providers (operators of hosting systems, web analysis service providers and marketing service providers). Our system service providers help us to make our offers and services available and constantly improve them for you.
Furthermore, data may be passed on to other third parties if there is a corresponding legal obligation, if such a passing on is necessary to protect our rights as well as the rights of our customers.
We do not sell personal data to third parties.
3. Storage period
If no storage period has been specified within this data protection policy, your personal data will remain stored by us until the purpose for the data processing no longer applies. If you submit a request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g. retention periods under tax or commercial law); in the last-mentioned case, the data will be deleted once these reasons no longer apply.
4. Log data collection and maintenance
You can visit our websites without providing any personal information. Each time you call up a website, the web server only automatically saves a so-called server log file. The following data is processed in the process:
- IP address of the user
- Date and time of access
- Pages/files accessed
- Protocol and status of access
- Volume of data transfer
- Referrer URL
- Information on the client/browser used
This processing is technically necessary for us to display our website to you and to ensure the functionality, stability and security of the website. Pursuant to Art. 6 (1) (f) GDPR, this protects our legitimate interests. All access data is deleted at the latest seven days after the end of your visit to the site. Within the scope of processing on our behalf, a third-party provider provides services for us to display the website (programming and maintenance). This service provider is located within a country of the European Union or the European Economic Area. A data processing agreement in accordance with Art. 28 GDPR has been concluded.
The use of the website requires consent for those cookies that are absolutely necessary for its operation. In addition, you can give us your consent to the use of other cookies (statistics category). This request is made in each case before the first use of our website and serves as the legal basis for the processing of personal data automatically collected by our website on the basis of Art. 6 (1) (a) GDPR.
The table below shows the cookies that are used on our website after consent has been given:
Google Analytics Cookies:
Purpose: Differentiation of users
Storage period: 2 years
Purpose: Differentiation of users
Storage period: 1 day
Purpose: Differentiation of users
Storage period: 1 minute
6. Third-party services
6.1 Google services
The tracking measures listed below and used by us are carried out on the basis of Art. 6 (1) (a) GDPR.
a) Google Tag Manager
b) Google Analytics
We use Google Analytics as a web analysis service. IP anonymisation is activated on all company websites so that the IP address of users is shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the owner of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
You can prevent the storage of the cookies used by setting your browser software accordingly. However, this offer informs users that in this case they may not be able to use all the functions of this website to their full extent. Users may also prevent the collection of data generated by the cookie and relating to their use of the website (including their IP address) by Google, and the processing of this data by Google, by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=en
c) Google Ads Conversion Tracking
To promote our services and increase our reach, we use the Google Ads Conversion Tracking tool. With this we see which keywords, ads and campaigns lead to the desired customer actions. We see how many customers interact with our ads on a device and then make a conversion. When you click on a Google Ads ad, a cookie is set on your device. We can therefore recognise that you have reached our website via the ad. We do not receive any personal data from you. Google provides us with a report containing only statistical evaluations (e.g. total number of clicks on our ads). You can find further information at: https://support.google.com/adwords/answer/1722022?hl=en
Within our online offer, the service Issuu (Issuu, Inc., 131 Lytton Ave, Palo Alto, CA 94301, USA) is used on the basis of our legitimate interests. Issuu is used to present our catalogues and brochures in a visually appealing and technically functional and simple manner. Issuu sets cookies to improve the services for users and to ensure their functionality. You can find more information about Issuu's data protection at: https://issuu.com/legal/privacy
7. Data protection information for applicants
Data and documents provided to us in connection with your application (e.g. application as a guide) are collected, stored and used by us exclusively for this purpose. We only store your personal data for as long as is necessary to fulfil the purpose for which it was collected or as the law requires us to retain it. If we are unable to accept your application, we will delete your data after six months from the date of the rejection. If you give us your consent, we will store your application data in order to contact you at a later date if necessary. We do not pass on the collected data to third parties, in particular these data are not sold or rented out.
8. External links
Our website contains links to websites of other providers that are not affiliated with us (e.g. links to social media platforms such as Facebook, Instagram or YouTube). By clicking on these links, you will be forwarded directly to the websites of these providers. You will recognise this by the change of URL, among other things. As we no longer have any influence on the processing of your personal data from this point on, we cannot accept any responsibility for this. For all external offers, please inform yourself directly about the data protection provisions on the selected websites.
9. Data security
In order to protect the transaction of data, a secure SSL connection is being used to transmit these data. This ensures that unauthorized third parties are unable to view your personal data during transmission. SSL secured pages can be recognized as you will see https:// at the start of the web address rather than the http://. In addition, most browsers also show a small closed padlock icon (e.g. at the bottom status bar).
10. Data subject rights
a) Access and data portability
You may at any time request full disclosure of the personal data we hold about you and that we hand over this data in a common, structured and machine-readable format.
b) Correction, restriction and deletion
If your personal data has changed, if there is a legal requirement for a restriction of data processing or if you no longer agree to the storage of your data, we will carry out a correction, restriction or deletion at your request and insofar as there are no legal regulations to the contrary.
c) Revocation of your consent
You may revoke your consent in whole or in part at any time with effect for the future. Processing based on your consent up to its revocation remains unaffected by this.
You can object to the existing processing at any time.